./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2660323392
<...>
Warning: Permanently added '10.128.1.61' (ED25519) to the list of known hosts.
execve("./syz-executor2660323392", ["./syz-executor2660323392"], 0x7ffd7b208820 /* 10 vars */) = 0
brk(NULL) = 0x555556aec000
brk(0x555556aecd00) = 0x555556aecd00
arch_prctl(ARCH_SET_FS, 0x555556aec380) = 0
set_tid_address(0x555556aec650) = 5054
set_robust_list(0x555556aec660, 24) = 0
rseq(0x555556aecca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor2660323392", 4096) = 28
getrandom("\x84\x2a\xd2\x4f\x09\x9a\x24\xab", 8, GRND_NONBLOCK) = 8
brk(NULL) = 0x555556aecd00
brk(0x555556b0dd00) = 0x555556b0dd00
brk(0x555556b0e000) = 0x555556b0e000
mprotect(0x7f7c2e463000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
unshare(CLONE_NEWPID) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5055 attached
, child_tidptr=0x555556aec650) = 5055
[pid 5055] set_robust_list(0x555556aec660, 24) = 0
[pid 5055] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy)
[pid 5055] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5055] setsid() = 1
[pid 5055] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0
[pid 5055] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0
[pid 5055] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0
[pid 5055] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0
[pid 5055] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0
[pid 5055] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0
[pid 5055] unshare(CLONE_NEWNS) = 0
[pid 5055] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0
[pid 5055] unshare(CLONE_NEWIPC) = 0
[pid 5055] unshare(CLONE_NEWCGROUP) = 0
[pid 5055] unshare(CLONE_NEWUTS) = 0
[pid 5055] unshare(CLONE_SYSVSEM) = 0
[pid 5055] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3
[pid 5055] write(3, "16777216", 8) = 8
[pid 5055] close(3) = 0
[pid 5055] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3
[pid 5055] write(3, "536870912", 9) = 9
[pid 5055] close(3) = 0
[pid 5055] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3
[pid 5055] write(3, "1024", 4) = 4
[pid 5055] close(3) = 0
[pid 5055] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3
[pid 5055] write(3, "8192", 4) = 4
[pid 5055] close(3) = 0
[pid 5055] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3
[pid 5055] write(3, "1024", 4) = 4
[pid 5055] close(3) = 0
[pid 5055] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3
[pid 5055] write(3, "1024", 4) = 4
[pid 5055] close(3) = 0
[pid 5055] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3
[pid 5055] write(3, "1024 1048576 500 1024", 21) = 21
[pid 5055] close(3) = 0
[pid 5055] getpid() = 1
[pid 5055] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, inheritable=0}) = 0
[pid 5055] capset({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, inheritable=0}) = 0
[pid 5055] unshare(CLONE_NEWNET) = 0
[pid 5055] openat(AT_FDCWD, "/proc/sys/net/ipv4/ping_group_range", O_WRONLY|O_CLOEXEC) = 3
[pid 5055] write(3, "0 65535", 7) = 7
[pid 5055] close(3) = 0
[pid 5055] mkdir("/dev/binderfs", 0777) = 0
[pid 5055] mount("binder", "/dev/binderfs", "binder", 0, NULL) = 0
[pid 5055] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5055] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5058 attached
, child_tidptr=0x555556aec650) = 2
[pid 5058] set_robust_list(0x555556aec660, 24) = 0
[pid 5058] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5058] setpgid(0, 0) = 0
[pid 5058] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5058] write(3, "1000", 4) = 4
[pid 5058] close(3) = 0
[pid 5058] openat(AT_FDCWD, "/dev/bus/usb/009/001", O_RDONLY) = 3
[pid 5058] socketpair(AF_UNIX, SOCK_STREAM, 0, [4, 5]) = 0
[pid 5058] openat(AT_FDCWD, "/sys/devices/platform/vhci_hcd.0/attach", O_WRONLY|O_CLOEXEC) = 6
[pid 5058] write(6, "0 4 0 1", 7) = 7
[pid 5058] close(6) = 0
[ 45.327346][ T5058] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(4)
[ 45.333873][ T5058] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[ 45.341559][ T5058] vhci_hcd vhci_hcd.0: Device attached
[ 45.709953][ T778] usb 9-1: new low-speed USB device number 2 using vhci_hcd
[pid 5058] close(3 <unfinished ...>
[pid 5055] kill(-2, SIGKILL) = 0
[pid 5055] kill(2, SIGKILL) = 0
[pid 5055] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid 5055] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid 5055] getdents64(3, 0x555556aed6f0 /* 2 entries */, 32768) = 48
[pid 5055] getdents64(3, 0x555556aed6f0 /* 0 entries */, 32768) = 0
[pid 5055] close(3) = 0
[ 76.130644][ T8] cfg80211: failed to load regulatory.db
[ 286.049905][ T29] INFO: task kworker/1:2:778 blocked for more than 143 seconds.
[ 286.057601][ T29] Not tainted 6.7.0-syzkaller-09928-g052d534373b7 #0
[ 286.064833][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 286.073596][ T29] task:kworker/1:2 state:D stack:27392 pid:778 tgid:778 ppid:2 flags:0x00004000
[ 286.083853][ T29] Workqueue: usb_hub_wq hub_event
[ 286.088950][ T29] Call Trace:
[ 286.092250][ T29] <TASK>
[ 286.095193][ T29] __schedule+0xf12/0x5c00
[ 286.099607][ T29] ? reacquire_held_locks+0x4c0/0x4c0
[ 286.105010][ T29] ? reacquire_held_locks+0x4c0/0x4c0
[ 286.110450][ T29] ? rcu_is_watching+0x12/0xb0
[ 286.115218][ T29] ? io_schedule_timeout+0x150/0x150
[ 286.120531][ T29] ? lock_release+0x4bf/0x690
[ 286.125255][ T29] ? schedule+0x1fc/0x270
[ 286.129576][ T29] ? reacquire_held_locks+0x4c0/0x4c0
[ 286.134968][ T29] ? spin_bug+0x1d0/0x1d0
[ 286.139307][ T29] ? rcu_is_watching+0x12/0xb0
[ 286.144106][ T29] ? trace_irq_enable.constprop.0+0xd0/0x100
[ 286.150149][ T29] schedule+0xe9/0x270
[ 286.154205][ T29] usb_kill_urb.part.0+0x1c6/0x250
[ 286.159299][ T29] ? usb_anchor_suspend_wakeups+0x40/0x40
[ 286.165037][ T29] ? prepare_to_swait_exclusive+0x240/0x240
[ 286.170971][ T29] ? preempt_count_sub+0x160/0x160
[ 286.176069][ T29] usb_kill_urb+0x83/0xa0
[ 286.180707][ T29] usb_start_wait_urb+0x251/0x4c0
[ 286.185775][ T29] ? usb_api_blocking_completion+0xa0/0xa0
[ 286.191613][ T29] usb_control_msg+0x327/0x4a0
[ 286.196400][ T29] ? usb_start_wait_urb+0x4c0/0x4c0
[ 286.201623][ T29] ? hub_resume+0x3e0/0x3e0
[ 286.206142][ T29] get_bMaxPacketSize0.constprop.0+0xa5/0x1c0
[ 286.212224][ T29] hub_port_init+0x680/0x3820
[ 286.216917][ T29] hub_event+0x2b61/0x4e10
[ 286.221373][ T29] ? hub_port_debounce+0x3d0/0x3d0
[ 286.226514][ T29] ? lock_acquire+0x464/0x520
[ 286.231201][ T29] ? check_irq_usage+0xc11/0x1490
[ 286.236254][ T29] ? lock_sync+0x190/0x190
[ 286.240687][ T29] ? reacquire_held_locks+0x4c0/0x4c0
[ 286.246092][ T29] ? spin_bug+0x1d0/0x1d0
[ 286.250436][ T29] process_one_work+0x886/0x15d0
[ 286.255403][ T29] ? lock_sync+0x190/0x190
[ 286.259877][ T29] ? workqueue_congested+0x300/0x300
[ 286.265248][ T29] ? assign_work+0x1a0/0x250
[ 286.269875][ T29] worker_thread+0x8b9/0x1290
[ 286.274603][ T29] ? __kthread_parkme+0x14b/0x220
[ 286.279616][ T29] ? process_one_work+0x15d0/0x15d0
[ 286.284850][ T29] kthread+0x2c6/0x3a0
[ 286.288956][ T29] ? kthread_complete_and_exit+0x40/0x40
[ 286.294633][ T29] ? kthread_complete_and_exit+0x40/0x40
[ 286.300345][ T29] ret_from_fork+0x45/0x80
[ 286.304777][ T29] ? kthread_complete_and_exit+0x40/0x40
[ 286.310433][ T29] ret_from_fork_asm+0x11/0x20
[ 286.315241][ T29] </TASK>
[ 286.318336][ T29] INFO: task syz-executor266:5058 blocked for more than 143 seconds.
[ 286.326452][ T29] Not tainted 6.7.0-syzkaller-09928-g052d534373b7 #0
[ 286.333691][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 286.342384][ T29] task:syz-executor266 state:D stack:27256 pid:5058 tgid:5058 ppid:5055 flags:0x00004006
[ 286.352577][ T29] Call Trace:
[ 286.355836][ T29] <TASK>
[ 286.358746][ T29] __schedule+0xf12/0x5c00
[ 286.363183][ T29] ? trace_irq_enable.constprop.0+0xd0/0x100
[ 286.369194][ T29] ? finish_task_switch.isra.0+0x219/0xca0
[ 286.375027][ T29] ? io_schedule_timeout+0x150/0x150
[ 286.380350][ T29] ? lock_release+0x4bf/0x690
[ 286.385011][ T29] ? schedule+0x1fc/0x270
[ 286.389322][ T29] ? reacquire_held_locks+0x4c0/0x4c0
[ 286.394716][ T29] ? __mutex_lock+0x5b4/0x9d0
[ 286.399426][ T29] ? __mutex_trylock_common+0x78/0x250
[ 286.404913][ T29] ? mutex_is_locked+0x40/0x40
[ 286.409705][ T29] ? spin_bug+0x1d0/0x1d0
[ 286.414046][ T29] schedule+0xe9/0x270
[ 286.418126][ T29] schedule_preempt_disabled+0x13/0x20
[ 286.423599][ T29] __mutex_lock+0x5b9/0x9d0
[ 286.428122][ T29] ? locks_remove_posix+0x28e/0x440
[ 286.433346][ T29] ? usbdev_release+0x87/0x470
[ 286.438130][ T29] ? mutex_trylock+0x130/0x130
[ 286.442949][ T29] ? __fsnotify_update_child_dentry_flags+0x340/0x340
[ 286.449751][ T29] ? locks_remove_file+0x399/0x5a0
[ 286.454888][ T29] ? free_async+0x4e0/0x4e0
[ 286.459420][ T29] ? usbdev_release+0x87/0x470
[ 286.464231][ T29] usbdev_release+0x87/0x470
[ 286.468850][ T29] ? free_async+0x4e0/0x4e0
[ 286.473393][ T29] __fput+0x270/0xb70
[ 286.477405][ T29] __fput_sync+0x47/0x50
[ 286.481678][ T29] __x64_sys_close+0x87/0xf0
[ 286.486284][ T29] do_syscall_64+0xd3/0x250
[ 286.490800][ T29] entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 286.496717][ T29] RIP: 0033:0x7f7c2e3ef0e0
[ 286.501151][ T29] RSP: 002b:00007ffd31175c18 EFLAGS: 00000202 ORIG_RAX: 0000000000000003
[ 286.509578][ T29] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f7c2e3ef0e0
[ 286.517560][ T29] RDX: 0000000000000007 RSI: 00007ffd31175750 RDI: 0000000000000003
[ 286.525571][ T29] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 286.533577][ T29] R10: 0000000000000000 R11: 0000000000000202 R12: 00000000000f4240
[ 286.541615][ T29] R13: 00007ffd31175ec8 R14: 0000000000000001 R15: 00007ffd31175c60
[ 286.549594][ T29] </TASK>
[ 286.552620][ T29] INFO: lockdep is turned off.
[ 286.557370][ T29] NMI backtrace for cpu 0
[ 286.561677][ T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.7.0-syzkaller-09928-g052d534373b7 #0
[ 286.571117][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 286.581154][ T29] Call Trace:
[ 286.584416][ T29] <TASK>
[ 286.587330][ T29] dump_stack_lvl+0xd9/0x1b0
[ 286.591917][ T29] nmi_cpu_backtrace+0x277/0x390
[ 286.596851][ T29] ? lapic_can_unplug_cpu+0xa0/0xa0
[ 286.602044][ T29] nmi_trigger_cpumask_backtrace+0x299/0x300
[ 286.608019][ T29] watchdog+0xf87/0x1210
[ 286.612255][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90
[ 286.618227][ T29] ? __kthread_parkme+0x14b/0x220
[ 286.623240][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90
[ 286.629210][ T29] kthread+0x2c6/0x3a0
[ 286.633266][ T29] ? kthread_complete_and_exit+0x40/0x40
[ 286.638888][ T29] ? kthread_complete_and_exit+0x40/0x40
[ 286.644514][ T29] ret_from_fork+0x45/0x80
[ 286.648931][ T29] ? kthread_complete_and_exit+0x40/0x40
[ 286.654552][ T29] ret_from_fork_asm+0x11/0x20
[ 286.659310][ T29] </TASK>
[ 286.662354][ T29] Sending NMI from CPU 0 to CPUs 1:
[ 286.667573][ C1] NMI backtrace for cpu 1
[ 286.667580][ C1] CPU: 1 PID: 70 Comm: kworker/u4:4 Not tainted 6.7.0-syzkaller-09928-g052d534373b7 #0
[ 286.667594][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 286.667602][ C1] Workqueue: events_unbound toggle_allocation_gate
[ 286.667621][ C1] RIP: 0010:__sanitizer_cov_trace_pc+0x0/0x60
[ 286.667641][ C1] Code: b6 dc df 02 66 0f 1f 44 00 00 f3 0f 1e fa 48 8b be b0 01 00 00 e8 b0 ff ff ff 31 c0 c3 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 <f3> 0f 1e fa 65 48 8b 14 25 80 c2 03 00 65 8b 05 d4 b1 7b 7e a9 00
[ 286.667653][ C1] RSP: 0018:ffffc900015a79a0 EFLAGS: 00000006
[ 286.667663][ C1] RAX: 0000000000000000 RBX: 0000000000000200 RCX: ffffffff812fe3af
[ 286.667671][ C1] RDX: ffff888016b58000 RSI: 0000000000000000 RDI: 0000000000000007
[ 286.667679][ C1] RBP: ffffffff81d5e322 R08: 0000000000000007 R09: 0000000000000000
[ 286.667687][ C1] R10: 0000000000000200 R11: 1ffff110093967f9 R12: 0000000000000323
[ 286.667695][ C1] R13: 0000000000000003 R14: ffffffff8d326f00 R15: 0000000000000000
[ 286.667707][ C1] FS: 0000000000000000(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000
[ 286.667719][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 286.667728][ C1] CR2: 000055d4ada38680 CR3: 000000000cf79000 CR4: 0000000000350ef0
[ 286.667736][ C1] Call Trace:
[ 286.667741][ C1] <NMI>
[ 286.667745][ C1] ? show_regs+0x8f/0xa0
[ 286.667762][ C1] ? nmi_cpu_backtrace+0x1d4/0x390
[ 286.667783][ C1] ? nmi_cpu_backtrace_handler+0xc/0x10
[ 286.667803][ C1] ? nmi_handle+0x1a6/0x570
[ 286.667818][ C1] ? x86_pmu_event_mapped+0x1c0/0x1c0
[ 286.667840][ C1] ? kcov_close+0x20/0x20
[ 286.667856][ C1] ? default_do_nmi+0x6a/0x160
[ 286.667872][ C1] ? exc_nmi+0x186/0x200
[ 286.667886][ C1] ? end_repeat_nmi+0xf/0x2a
[ 286.667907][ C1] ? kmalloc_node_trace+0xa2/0x380
[ 286.667929][ C1] ? __text_poke+0x5df/0xca0
[ 286.667942][ C1] ? kcov_close+0x20/0x20
[ 286.667958][ C1] ? kcov_close+0x20/0x20
[ 286.667975][ C1] ? kcov_close+0x20/0x20
[ 286.667991][ C1] </NMI>
[ 286.667995][ C1] <TASK>
[ 286.667998][ C1] __text_poke+0x8d2/0xca0
[ 286.668011][ C1] ? setup_data_read+0x280/0x280
[ 286.668027][ C1] ? apply_relocation+0x830/0x830
[ 286.668041][ C1] ? __text_poke+0xca0/0xca0
[ 286.668055][ C1] text_poke_bp_batch+0x493/0x750
[ 286.668071][ C1] ? kmem_cache_alloc_bulk+0x1b7/0x940
[ 286.668091][ C1] ? alternatives_enable_smp+0x400/0x400
[ 286.668105][ C1] ? __jump_label_patch+0x1db/0x400
[ 286.668124][ C1] ? text_poke_queue+0xef/0x180
[ 286.668145][ C1] ? arch_jump_label_transform_queue+0xc0/0x110
[ 286.668168][ C1] text_poke_finish+0x30/0x40
[ 286.668182][ C1] arch_jump_label_transform_apply+0x1c/0x30
[ 286.668203][ C1] jump_label_update+0x1d7/0x400
[ 286.668224][ C1] static_key_enable_cpuslocked+0x1b7/0x270
[ 286.668244][ C1] static_key_enable+0x1a/0x20
[ 286.668262][ C1] toggle_allocation_gate+0xf4/0x250
[ 286.668281][ C1] ? wake_up_kfence_timer+0x30/0x30
[ 286.668299][ C1] ? spin_bug+0x1d0/0x1d0
[ 286.668315][ C1] process_one_work+0x886/0x15d0
[ 286.668336][ C1] ? lock_sync+0x190/0x190
[ 286.668347][ C1] ? workqueue_congested+0x300/0x300
[ 286.668368][ C1] ? assign_work+0x1a0/0x250
[ 286.668387][ C1] worker_thread+0x8b9/0x1290
[ 286.668408][ C1] ? __kthread_parkme+0x14b/0x220
[ 286.668427][ C1] ? process_one_work+0x15d0/0x15d0
[ 286.668444][ C1] kthread+0x2c6/0x3a0
[ 286.668457][ C1] ? kthread_complete_and_exit+0x40/0x40
[ 286.668472][ C1] ? kthread_complete_and_exit+0x40/0x40
[ 286.668488][ C1] ret_from_fork+0x45/0x80
[ 286.668502][ C1] ? kthread_complete_and_exit+0x40/0x40
[ 286.668517][ C1] ret_from_fork_asm+0x11/0x20
[ 286.668537][ C1] </TASK>
[ 286.668570][ T29] Kernel panic - not syncing: hung_task: blocked tasks
[ 287.036253][ T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.7.0-syzkaller-09928-g052d534373b7 #0
[ 287.045692][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[ 287.055729][ T29] Call Trace:
[ 287.058993][ T29] <TASK>
[ 287.061911][ T29] dump_stack_lvl+0xd9/0x1b0
[ 287.066513][ T29] panic+0x6dc/0x790
[ 287.070402][ T29] ? panic_smp_self_stop+0xa0/0xa0
[ 287.075512][ T29] ? __irq_work_queue_local+0x132/0x400
[ 287.081045][ T29] ? irq_work_queue+0x2a/0x70
[ 287.085708][ T29] ? watchdog+0xd3e/0x1210
[ 287.090115][ T29] ? watchdog+0xd31/0x1210
[ 287.094522][ T29] watchdog+0xd4f/0x1210
[ 287.098760][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90
[ 287.104731][ T29] ? __kthread_parkme+0x14b/0x220
[ 287.109744][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90
[ 287.115719][ T29] kthread+0x2c6/0x3a0
[ 287.119781][ T29] ? kthread_complete_and_exit+0x40/0x40
[ 287.125411][ T29] ? kthread_complete_and_exit+0x40/0x40
[ 287.131042][ T29] ret_from_fork+0x45/0x80
[ 287.135448][ T29] ? kthread_complete_and_exit+0x40/0x40
[ 287.141073][ T29] ret_from_fork_asm+0x11/0x20
[ 287.145836][ T29] </TASK>
[ 287.149057][ T29] Kernel Offset: disabled
[ 287.153361][ T29] Rebooting in 86400 seconds..